|
|
|
|
|
|
|
 Posted: Mon Feb 27, 2006 4:10 pm
Well, two of us have been hacked in a short period of time, is it possible that some of us are being targetted by pro-inflaters?
|
 |
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Mon Feb 27, 2006 7:12 pm
Winters stopped caring.
It's a possibility. It seems like someone is doing anything they can to promote it then.
Winter refuses to care.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Mon Feb 27, 2006 7:59 pm
i'm not sure it's just pro-inflationists it could be anybody but it seems whoever is doing it is doing it to people who are trying to stop pro-inflation.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Mon Feb 27, 2006 8:13 pm
Or maybe I'm over-reacting? I mean, godsend and virgil are like prime hacking targets with the items they had on.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Tue Feb 28, 2006 6:56 am
If that were the case, would it not make sense to target someone much juicier? Someone with quite a bit more items.
Let me list a few methods of going through. (The ones I could come up with from the top of my head)
Key-logging - Usually only works if someone is an idiot enough to open up a program or link that immediately runs a program.
Cookie-crack/hack - Usually happens when someone clicks on a link on an e-mail or site that goes to a different address from what the link shows. So most times it is best to type in the address rather than clicking on a link.
Buffer Over-run exploit - Usually happens by inserting a lot more on the password field, enough so that it confuses and forces the coding to move on to the next line on the run process which is usually to log an account on. Can be done with just an Internet Explorer. I doubt this would work, since gaia does not really do the log on process normally any more. Though... maybe it does, I just do not know the address to use. The one trying to get in needs to know ascii and other methods of declaring characters.
E-mail or link phishing - There are sites that might ask you for a username and password. This is the main part of the cookie-crack/hack, when you click on to a site, make sure that what is in the address bar matches the properties of the link. Else you might be routed through a secondary site set-up by someone to phish for passwords and usernames. Meaning, if you use a similar account on another site with the same password, while going through a link, the ones on the other end can see if it works here.
Giving out pass to supposedly trusted individuals - Well, sometimes those you trust can't be trusted after all.
Pure Luck/Guess - I doubt this, but who knows? Someone might just get lucky.
Any how, in the end, change passwords frequently and make it hard to guess, never click on a link that you are unsure of, that is my suggestion. I am just listing a few things here that I came in contact with, pre-warned is to be forearmed. There are a lot of other methods, and even methods I might not have dreamed of. Some people are amazing at cracking and phishing.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Tue Feb 28, 2006 2:24 pm
[The.End] Or maybe I'm over-reacting? I mean, godsend and virgil are like prime hacking targets with the items they had on. wayy over-reacting xD most pro-inflationist, well succesful ones anyways have millions of gold and they would never try to hack some one because of their fear of losing their stuff
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Tue Feb 28, 2006 5:14 pm
I think you're just a bit too paranoid, m'dear! xD heart
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Tue Feb 28, 2006 5:34 pm
I do know that there are programs designed to crack passwords, and they work by going through every word in the dictionary and number combinations and even names.
The best thing to do is include numbers and words that dont mean anything, or an acronym that you make up yourself but is not a real word. (Like "adwahiad" could be "a donut without a hole is a danish"). I read about this in a book on password protection against these programs. Adding numbers in the middle of this also helps to prevent hacking in this way.
For those of you who have a lot of expensive items, put extras in mule accounts that you NEVER use for posting/trading with others/selling. Only use them for storage and trading with your own account. Pretty much, don't let the public know about these ones.
That's about all the advice I can give for now...
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Tue Feb 28, 2006 5:39 pm
guitarrist90 [The.End] Or maybe I'm over-reacting? I mean, godsend and virgil are like prime hacking targets with the items they had on. wayy over-reacting xD most pro-inflationist, well succesful ones anyways have millions of gold and they would never try to hack some one because of their fear of losing their stuff New accounts can always be created, and if they fear heving their IP address, they are always other connections they could use. I think if certain precautions are used, there is not much to worry about.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Tue Feb 28, 2006 11:00 pm
I think that's unlikely.
Since hacking involves a lot and they wouldn't want to risk getting banned and such.
But it's still a possibility.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Wed Mar 01, 2006 7:38 am
Icarus 2.0 I think that's unlikely.
Since hacking involves a lot and they wouldn't want to risk getting banned and such.
But it's still a possibility. As much as it is unlikely... It is easier than you think. I haven't done these things since '96 but... I did mention that some hackers only need a browser to hack in to an account right? This site does not look that secure. It has a lot less security than e-mails. I wonder if gaia would allow users to try to hack in to other accounts, to see if their security is good. I kinda want to test out a few things if I am given permission. Actually I should ask.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Wed Mar 01, 2006 9:38 am
xyzse As much as it is unlikely... It is easier than you think. I haven't done these things since '96 but... I did mention that some hackers only need a browser to hack in to an account right? This site does not look that secure. It has a lot less security than e-mails. I wonder if gaia would allow users to try to hack in to other accounts, to see if their security is good. I kinda want to test out a few things if I am given permission. Actually I should ask.
But yeah, it would interesting if you could do that.
It would give users a lot of extra info about hacking.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Wed Mar 01, 2006 11:33 pm
xyzse Icarus 2.0 I think that's unlikely.
Since hacking involves a lot and they wouldn't want to risk getting banned and such.
But it's still a possibility. As much as it is unlikely... It is easier than you think. I haven't done these things since '96 but... I did mention that some hackers only need a browser to hack in to an account right? This site does not look that secure. It has a lot less security than e-mails. I wonder if gaia would allow users to try to hack in to other accounts, to see if their security is good. I kinda want to test out a few things if I am given permission. Actually I should ask. PM Dri. She will for sure PM you back. Get her to set up an account to see if you can do it. ^w^
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Thu Mar 02, 2006 7:24 am
xyzse Key-logging - Usually only works if someone is an idiot enough to open up a program or link that immediately runs a program. . you mean within the site? I never heard of key-logging before and I would like to know a little more about it. sweatdrop
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Posted: Thu Mar 02, 2006 7:46 am
Eva Dramatica xyzse Key-logging - Usually only works if someone is an idiot enough to open up a program or link that immediately runs a program. . you mean within the site? I never heard of key-logging before and I would like to know a little more about it. sweatdrop Also set-up by people through unsecure terminals, or supposed friends or family that place it on a user's machine. There are also physical gadgets that can do that for you. I will try to PM Dri. I pmed someone else yesterday.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Reply
